X

Vous n'êtes pas connecté

Maroc Maroc - SECURITYAFFAIRS.CO - A La Une - 05/Jan 19:06

Nuclei flaw allows signature bypass and code execution

A vulnerability in Nuclei, an open-source vulnerability scanner, could allow attackers to bypass signature checks and execute malicious code. A high-severity security flaw, tracked as CVE-2024-43405 (CVSS score of 7.4), in the open-source vulnerability scanner ProjectDiscovery’s Nuclei, could allow attackers to bypass signature checks and execute malicious code. The Wiz’s engineering team discovered the vulnerability. The vulnerability […]

Articles similaires

Sorry! Image not available at this time

Splunk RCE Vulnerability Let Attackers Execute Arbitrary Code Via File Upload

itsecuritynews.info - 27/Mar 04:15

Splunk has released patches to address a high-severity Remote Code Execution (RCE) vulnerability affecting Splunk Enterprise and Splunk Cloud...

Sorry! Image not available at this time

Splunk RCE Vulnerability Let Attackers Execute Arbitrary Code Via File Upload

itsecuritynews.info - 27/Mar 04:15

Splunk has released patches to address a high-severity Remote Code Execution (RCE) vulnerability affecting Splunk Enterprise and Splunk Cloud...

Sorry! Image not available at this time

Attackers can bypass middleware auth checks by exploiting critical Next.js flaw

securityaffairs.co - 24/Mar 11:22

A critical flaw in the Next.js React framework could be exploited to bypass authorization checks under certain conditions. Maintainers of Next.js...

Sorry! Image not available at this time

Veeam fixed critical Backup & Replication flaw CVE-2025-23120

securityaffairs.co - 20/Mar 19:26

Veeam released security patches for a critical Backup & Replication vulnerability that could let attackers remotely execute code. Veeam addressed...

Sorry! Image not available at this time

Critical flaw in Next.js lets hackers bypass authorization

bleepingcomputer.com - 24/Mar 16:15

A critical severity vulnerability has been discovered in the Next.js open-source web development framework, potentially allowing attackers to bypass...

Sorry! Image not available at this time

Critical flaw in Next.js lets hackers bypass authorization

bleepingcomputer.com - 24/Mar 16:15

A critical severity vulnerability has been discovered in the Next.js open-source web development framework, potentially allowing attackers to bypass...

Sorry! Image not available at this time

Google Chrome was affected by CVE-2025-2783

thecyberthrone.in - 27/Mar 03:24

CVE-2025-2783 is a zero-day vulnerability affecting Google Chrome, uncovered in a targeted cyber-espionage campaign known as Operation ForumTroll....

Sorry! Image not available at this time

Google Chrome was affected by CVE-2025-2783

thecyberthrone.in - 27/Mar 03:24

CVE-2025-2783 is a zero-day vulnerability affecting Google Chrome, uncovered in a targeted cyber-espionage campaign known as Operation ForumTroll....

Sorry! Image not available at this time

Authentication bypass CVE-2025-22230 impacts VMware Windows Tools

securityaffairs.co - 26/Mar 07:07

Broadcom addressed a high-severity authentication bypass vulnerability, tracked as CVE-2025-22230, in VMware Tools for Windows. Broadcom released...

Sorry! Image not available at this time

CVE-2025-2857 impacts Mozilla Firefox

thecyberthrone.in - 28/Mar 15:11

CVE-2025-2857 is a critical vulnerability affecting Mozilla Firefox on Windows systems, allowing attackers to escape the browser’s sandbox...